FDOT Structure Florida Department of Transportation (FDOT) has 9 Contract Administration Offices; Central Office, 7 District Offices and one Turnpike Enterprise. Each district has a domain and maintains their own policies, proxy servers, and internet access monitoring. Each district has access to the trnsport modules through the Citrix “Metaframe Presentation Server”.
Citrix “Metaframe Presentation Server” Citrix Product Applications are centrally consolidated and accessible via the Citrix Application Console. Simplifies deployment, management, monitoring and measurement. Citrix is secure, provides easy and instant access to trnsport applications from anywhere, at anytime, and over any connection. Ensures that the users have access to the right resources to protect the security of enterprise information assets.
File Server Cluste Citrix “Metaframe” Farm Ten additional servers
Citrix Farm Servers The servers are in a resource domain accessible to all domains in our organization through trusts. Each domain maintains their own policies, proxy servers, and internet access monitoring. Expedite programs and BERC are installed from the Citrix farm servers to a sharepoint on the file server. A non-authentication proxy server is used in the BERC.INI file. This address is not made public, and is not accessible to the users through standard browser controls, or the BERC management pages.
Expedite 5.3a Installation Installed on each Citrix farm server. Utilizes common file server (cluster) for: – Program exe and cfg files – Program input/output files Multiple gen.cfg files Each district has its own digital id public/private key pair User access is based on district domain groups that are recognized by the Citrix farm servers.
Expedite 5.3a Installation (Cont’d).BAT files created for each Expedite program – Allows to start programs from a CITRIX desktop icon – Allows for appropriate district file directory mapping based on Expedite district domain groups Each district has a separate Expedite/CITRIX domain group on LAN for user access File directory “permissions” managed thru cluster management utility, permissions grated to Expedite district file directories based on the district domain group.
BERC Installation BERC was installed as a service and service executable was installed to a sharepoint on the file server cluster. The executable is accessible to each server in the Citrix farm. A domain account was created to launch the service. Rights were granted to the sharepoint where the executable was installed. Users were granted access to the sharepoint for the BERC data and configuration files. Share permissions were established.
BERC Installation (cont’d) Production URL: – \\dotvcofp001\apps\berc_prod\BERC\bin\BERCsv c.exe The application points to the Internet Explorer browser executable, which is then followed by the localhost IP address and the BERC service port number. – "C:\Program Files\Internet Explorer\IEXPLORE.EXE"
BERC Installation (cont’d) Keys are imported into the application configuration, by executing the import commands from any server in the Citrix farm. Once the import is performed from one server, the keys are then accessible to all servers pointing to that installation location, further leveraging the single point of installation.
BERC Installation (cont’d) Load output directories mapped to the Expedite district input/output directories instead of the default BERC output directories File permissions are granted to the common domain user account BERC login page allows user to choose appropriate district BERC load.cfg file are kept in sync with Expedite load.cfg file The FDOT public key for each district was created using the Expedite Bid program and imported into BERC.
BERC ini File Contain settings for each district – UserID= – Name= – Description= – PrintOnDownLoad= – PrinterName= – UpLoadApparentBids= – LoadOutputDir= – Home=
BERC Application Directory Files BIN ETC VAR WWW
Citrix Application Console User Login to Citrix applications
Citrix Application Console (cont’d) Desktop application icons are displayed when the user logs on to Citrix.
Citrix Application Console (cont’d) Expedite and BERC applications. The icons lunch the Expedite.BAT files
Citrix Application Console (cont’d) Citrix farm server connection widow displays the server the user is connect to and the applications that are being used by the user.
Bid Express Customizations Installed as a windows service The database was customized to work with a multi district environment Customizations to BIDX.COM web pages for FDOT multi-district lettings Enable digital id authentication for each district digital id Multiple admin accounts for each of the districts that only allow update to appropriate district information
Bid Express Customizations (cont’d) Enable digital id authentication for each district digital id Multiple admin accounts for each of the districts that only allow update to appropriate district information
Surety 2000 Changes were made to the Expedite BONDCHECK digital id authentication to handle each district digital id. BONDCHECK required digital ids to be created by Expedite BID, not BERC.
Contact Information Leila T. Griffin Systems Analyst Contracts Administration Office (850)